SecurityAffairs: UNRAVELING EternalBlue: inside the WannaCry’s enabler https://securityaffairs.com/150220/hacking/unraveling-eternalblue-exploit.html #informationsecuritynews #ITInformationSecurity #PierluigiPaganini #SecurityAffairs #BreakingNews #ETERNALBLUE #hackingnews #WannaCry #Hacking #Malware #NSA
#informationsecuritynews #itinformationsecurity #pierluigipaganini #securityaffairs #breakingnews #eternalblue #hackingnews #wannacry #hacking #malware #nsa
Unraveling #EternalBlue: inside the #WannaCry’s enabler #cybersecurity #infosec https://securityaffairs.com/150220/hacking/unraveling-eternalblue-exploit.html @securityaffairs
#infosec #cybersecurity #wannacry #eternalblue
SecurityAffairs: UNRAVELING EternalBlue: inside the WannaCry’s enabler https://securityaffairs.com/150220/hacking/unraveling-eternalblue-exploit.html #informationsecuritynews #ITInformationSecurity #PierluigiPaganini #SecurityAffairs #BreakingNews #ETERNALBLUE #hackingnews #WannaCry #Hacking #Malware #NSA
#informationsecuritynews #itinformationsecurity #pierluigipaganini #securityaffairs #breakingnews #eternalblue #hackingnews #wannacry #hacking #malware #nsa
Oh goodie, there's a new #Windows #vulnerability (CVE-2022-37958) that can remotely execute code without any authentication, like #EternalBlue (CVE-2017-0144), but more flexible. Fortunately, #Micosoft patched this in September 2022 after #IBM #XForce reported it to them. #IBM will release the full technical details in Q2 2023.
#windows #vulnerability #eternalblue #micosoft #ibm #XForce #cybersecurity #infosec #exploit
Also be sure to turn on these monitoring policies in #DefenderForCloudApps so you can #CatchTheHacker before they get too deep, whether you switch to #Kerberos or not. #NetworkSegregation is also a great #LayeredDefense method to ensure if one system is compromised the attacker can't use #SMBtraversal to get to all your computers, globally. #EternalBlue source code is still being used to get to #DCs via #Trikbot evolutions, after #Phishing a user with #LocalAdmin privileges, to execute #mimikatz against #ActiveDirectory to steal all the objects. #YesThisHappened
#defenderforcloudapps #catchthehacker #kerberos #networksegregation #layereddefense #smbtraversal #eternalblue #DCS #trikbot #phishing #localadmin #mimikatz #activedirectory #yesthishappened
Una nuova RCE su Windows rivaleggia con il vecchio Eternalblue
Una ricercatrice di sicurezza ha recentemente scoperto una nuova #RCE su #Windows che ha il potenziale per rivaleggiare con il vecchio #EternalBlue, il nome di un altro difetto di sicurezza sempre di Windows utilizzato per diffondere #WannaCry, il #ransomware che ha bloccato le reti di computer in tutto il mondo nel 2017.
Come EternalBlue, la CVE-2022-37958 è una RCE su Windows e consente agli aggressori di eseguire #codice #dannoso senza richiedere l’#autenticazione.
#redhotcyber #informationsecurity #ethicalhacking #dataprotection #hacking #cybersecurity #cybercrime #cybersecurityawareness #cybersecuritytraining #cybersecuritynews #privacy #infosecurity
#infosecurity #privacy #CyberSecurityNews #cybersecuritytraining #CyberSecurityAwareness #cybercrime #cybersecurity #hacking #dataprotection #ethicalhacking #informationsecurity #redhotcyber #autenticazione #dannoso #codice #ransomware #wannacry #eternalblue #windows #rce
✨ CVE-2022-37958:
Critical Windows code-execution vulnerability went undetected until now
▶️ Potential to rival EternalBlue
▶️ Wormable
▶️ Unlike EternalBlue, Vulnerability present in a much broader range of network protocols
▶️ Good news: patch was released in September. hopefully all of us applied it
#infosec #eternalblue #patching #securityadvisory #sysadmin #blueteam #windowsvulnerability
#infosec #eternalblue #patching #securityadvisory #sysadmin #blueteam #windowsvulnerability
Still in the phase of playing my new-found music obsession on repeat: #EternalBlue by #Spiritbox
Not gonna be for everyone of course, but if you want modern #Metalcore that isn’t afraid to experiment with genre, with a very versatile female vocalist to match the amazing musicians then you are in for a treat 🌝
#eternalblue #Spiritbox #metalcore
Lemon Duck brings cryptocurrency miners back into the spotlight - By Vanja Svajcer, with contributions from Caitlin Huey.
We are used to ransomware attacks and big-g... http://feedproxy.google.com/~r/feedburner/Talos/~3/TCXbKzvuDF8/lemon-duck-brings-cryptocurrency-miners.html #cryptocurrency #threatresearch #eternalblue #smbghost #monero #usb
#usb #monero #smbghost #eternalblue #threatresearch #cryptocurrency
Wormable, Unpatched Microsoft Bug Threatens Corporate LANs - CVE-2020-0796 affects version 3.1.1 of Microsoft’s SMB file-sharing system and was not included in... more: https://threatpost.com/wormable-unpatched-microsoft-bug/153632/?utm_source=rss&utm_medium=rss&utm_campaign=wormable-unpatched-microsoft-bug #securityvulnerability #file-sharingsystem #vulnerabilities #cve-2020-0796 #version3.1.1 #eternalblue #microsoft #unpatched #wannacry #wormable #smb
#smb #wormable #wannacry #unpatched #microsoft #eternalblue #version3 #cve #vulnerabilities #file #securityvulnerability
New Lemon Duck Malware Campaign Targets IoT, Large Manufacturers - Malware campaign targets global manufacturers that are still dependent on Windows 7 subsystems to ... more: https://threatpost.com/lemon-duck-malware-targets-iot/152596/ #automatedguidedvehicles #servermessageblock #windows7endoflife #sqlinjection #eternalblue #powershell #printers #smarttvs #windows7 #malware #mssql #mysql #xmrig #ntlm #iot #smb
#smb #iot #ntlm #xmrig #mysql #mssql #malware #windows7 #smarttvs #printers #powershell #eternalblue #sqlinjection #windows7endoflife #servermessageblock #automatedguidedvehicles
RT @netresec@twitter.com
NetworkMiner 2.4 Released!
● Username extraction from #Kerberos
● OS fingerprinting of #ICS devices 👷
● Better Linux Support 🐧
● #EternalBlue exploit detection
Donc y a un #WannaCry v2 (#Petya qui exploite #EternalBlue) et c’est la panique générale ? Perso je rigole bien depuis mon #Linux :)
Et bordel, si vous êtes, encore, sous Windows… faites les mises à jours…
#linux #eternalblue #petya #wannacry